Google Kills Santy Worm Just Before Explosion

KingFishKingFish
edited December 2004 in Science & Tech
Google has shutdown a fast-spreading new worm that infects Web servers running a popular bulletin board package that used the Google search engine to find vulnerable servers.
The worm, dubbed Santy.A, uses a vulnerability in phpBB to spread across the Internet, infecting computer servers that host online bulletin boards and defacing those sites with the words "This site is defaced!!! NeverEverNoSanity WebWorm." It does not affect individual computer users however.

Santy.A was first spotted yesterday afternoon and appears to use a recently dislcosed vulnerability in the PHP scripting language, now patched. Once Santy infects servers running the phpBB software, it scans directories on the infected site and overwrites files with the extensions HTM, PHP, ASP, SHTM, JSP and PHTM.
Source: TechWorld

Comments

  • PirateNinjaPirateNinja Icrontian
    edited December 2004
    The article was written on the 22, it says that the first instance of the worm was noticed the 21st. My website was completely annihilated by that worm on the 20th. Im so lucky sometimes. /sarcasm
  • ThraxThrax 🐌 Austin, TX Icrontian
    edited December 2004
    :(
Sign In or Register to comment.